2 matches found
CVE-2018-17215
Postman (standalone) up to version 6.3.0 contains an information-disclosure vulnerability due to improper X.509 certificate validation. When a certificate is invalid, Postman still sends the associated HTTPS request data; however, only the response is suppressed from display. This can allow a man...
Postman 6.3.0 Improper Certificate Validation Vulnerability
Exploit for hardware platform in category web applications Product: Postman standalone Manufacturer: Postman Affected Versions: 6.3.0 and older Tested Versions: 6.2.2 x64 Windows and Linux, 6.3.0 Vulnerability Type: Improper Certificate Validation CWE-295 Risk Level: Medium Solution Status: Open...